Overview Repositories Revisions Requests Users Attributes Meta

Revisions of snapd

Zygmunt Krynicki's avatar Zygmunt Krynicki (zyga) accepted request 890469 from Maciej Borzecki's avatar Maciej Borzecki (maciek_borzecki) (revision 68) 
Drop dependency on shellcheck as it's not used at build time.
Zygmunt Krynicki's avatar Zygmunt Krynicki (zyga) accepted request 880817 from Maciej Borzecki's avatar Maciej Borzecki (maciek_borzecki) (revision 66) 
- More workarounds for slow OBS build hosts
Zygmunt Krynicki's avatar Zygmunt Krynicki (zyga) accepted request 880492 from Maciej Borzecki's avatar Maciej Borzecki (maciek_borzecki) (revision 65) 
- Workarounds for failing OBS builds
Zygmunt Krynicki's avatar Zygmunt Krynicki (zyga) accepted request 871449 from Maciej Borzecki's avatar Maciej Borzecki (maciek_borzecki) (revision 64) 
- Update to 2.49
- SECURITY UPDATE: An intended access restriction in snapd could be bypassed
  by container management snaps
  - CVE-2020-27352
  - USN-4728-1
Zygmunt Krynicki's avatar Zygmunt Krynicki (zyga) accepted request 862869 from Maciej Borzecki's avatar Maciej Borzecki (maciek_borzecki) (revision 63) 
- Update to 2.48.2
- Workaround bsc#1180766 by disabling the rule. Reading ICEauthority is still blocked by AA.
Zygmunt Krynicki's avatar Zygmunt Krynicki (zyga) accepted request 843213 from Maciej Borzecki's avatar Maciej Borzecki (maciek_borzecki) (revision 62) 
- Make sure that certain helper binaries (snap-exec, snap-update-ns, snapctl)
  are built statically, LP: #1900807
Zygmunt Krynicki's avatar Zygmunt Krynicki (zyga) accepted request 842527 from Maciej Borzecki's avatar Maciej Borzecki (maciek_borzecki) (revision 61) 
- Fix snap-confine AppArmor profile to allow executing snap-device-helper
  LP: #1900306
Zygmunt Krynicki's avatar Zygmunt Krynicki (zyga) accepted request 842322 from Maciej Borzecki's avatar Maciej Borzecki (maciek_borzecki) (revision 60) 
Update to upstream release 2.47.1
Zygmunt Krynicki's avatar Zygmunt Krynicki (zyga) committed (revision 59) 
Relase 2.46

Note that 2.46.1 is coming very soon
Zygmunt Krynicki's avatar Zygmunt Krynicki (zyga) committed (revision 58) 
- Update to upstream release 2.45.3.1
Zygmunt Krynicki's avatar Zygmunt Krynicki (zyga) committed (revision 57) 
- Update to upstream release 2.45.2 
  * SECURITY UPDATE: sandbox escape vulnerability on snapctl xdg-open
    implementation
    - usersession/userd/launcher.go: remove XDG_DATA_DIRS environment
      variable modification when calling the system xdg-open. Patch
      thanks to James Henstridge
    - packaging/ubuntu-16.04/snapd.postinst: ensure "snap userd" is
      restarted. Patch thanks to Michael Vogt
    - CVE-2020-11934
    - LP: #1880085
  * SECURITY UPDATE: arbitrary code execution vulnerability on core
    devices with access to physical removable media
    - devicestate: Disable/restrict cloud-init after seeding.
    - CVE-2020-11933
    - LP: #1879530
Zygmunt Krynicki's avatar Zygmunt Krynicki (zyga) committed (revision 56) 
Oh well, aarch64 needs some tests disabled first

The 32bit seccomp support is problematic.
Zygmunt Krynicki's avatar Zygmunt Krynicki (zyga) committed (revision 55) 
Build depend on CA certs and fix support for aarch64
Zygmunt Krynicki's avatar Zygmunt Krynicki (zyga) committed (revision 54) 
Fix skew in snapd.spec, sorr
Zygmunt Krynicki's avatar Zygmunt Krynicki (zyga) committed (revision 53) 
- Update to upstream release 2.45
Zygmunt Krynicki's avatar Zygmunt Krynicki (zyga) committed (revision 52) 
- Update to upstream release 2.44.5

- Update to upstream release 2.44.4

- Update to upstream release 2.44.3

- Update to upstream release 2.44.2

- Update to upstream release 2.44.1

- Update to upstream release 2.44

- Update to upstream release 2.43.3

- Update to upstream release 2.43.2

- Update to upstream release 2.43.1

- Update to upstream release 2.43

- Update to upstream release 2.42.5

- Update to upstream release 2.42.4

- Update to upstream release 2.42.3

- Update to upstream release 2.42.2

- Update to upstream release 2.42.1
Zygmunt Krynicki's avatar Zygmunt Krynicki (zyga) committed (revision 51) 
- New upstream maintenance release:
  - interfaces/opengl: allow datagrams to nvidia-driver
  - httputil: add NoNetwork(err) helper, spread test and use in serial acquire
  - interfaces: add uio interface
  - interfaces/greengrass-support: 'aws-iot-greengrass' snap fails to start due to apparmor deny on mounting of "/proc/latency_stats".
  - data, packaging: Add sudoers snippet to allow snaps to be run with sudo
Zygmunt Krynicki's avatar Zygmunt Krynicki (zyga) committed (revision 50) 
- New upstream maintenance release (2.43.2)
  - cmd/snap-confine: Revert #7421 (unmount /writable from snap view)
  - overlord/snapstate: fix for re-refresh bug
  - tests, run-checks, many: fix nakedret issues
  - data/selinux: workaround incorrect fonts cache labeling on RHEL7
  - tests: use test-snapd-upower instead of upower
  - overlord: increase overall settle timeout for slow arm boards
Zygmunt Krynicki's avatar Zygmunt Krynicki (zyga) committed (revision 49) 
- New upstream maintenance release (2.43.1)
  - 2.43 was short lived and was immediately updated to resolve an issue
Displaying revisions 41 - 60 of 108
openSUSE Build Service is sponsored by
Places